ClassicPress PetitionsClassicPress Petitions
This is a read-only archive. Post or comment on the live version of this page on our forums.

Protect sites by default from wp-json "snooping"

September 7, 2018 · 17:42 · Pieter Bos
Description

It should not be possible for non-logged-in people to view the output of domain.com/wp-json

Duplicate Pieter Bos
REST-API authentication option
Voters
+11 more
Tags
Difficulty: Easy
Request: Modify feature
Discussion
Daniele Scasciafratte
· September 10, 2018 · 10:40

it is the same of https://vote.classicpress.net/posts/15/rest-api-authentication-option?

Pieter Bos
· September 10, 2018 · 21:57

Not sure. If the result of that feature is that domain.com/wp-json can no longer be visited, then yes and the up-votes can be accumulated :)